CVE-2025-0485

Medium CVSS: 5.3

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been classified as problematic. Affected is an unknown function of the file /fladmin/sysconfig_doedit.php. The manipulation of the argument info leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Fanli2012

Product

Native-php-cms

CWE

CWE-79

Yayın Tarihi

2025-01-15 20:15:29

Güncelleme

2025-02-27 02:27:15

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Native-php-cms MEDIUM Fanli2012 2025

Referanslar

https://github.com/Fanli2012/native-php-cms/issues/7 https://github.com/Fanli2012/native-php-cms/issues/7#issue-2769919832 https://vuldb.com/?ctiid.291930 https://vuldb.com/?id.291930 https://vuldb.com/?submit.475247

Benzer Kayıtlar

Medium

CVE-2025-0491

A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. Affected is an unknown fun…

Medium

CVE-2025-0487

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some…

Medium

CVE-2025-0486

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerabil…

Medium

CVE-2025-0484

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown pr…